1 files changed, 123 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index de236ebe..a72a0054 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,73 @@
+bind9 (1:9.9.3.dfsg.P2-4) unstable; urgency=low
+
+  [Peter Marschall]
+
+  * If rndc.conf exists, skip creation of rndc.key.  Closes: #620394
+
+  [Al Tarakanoff]
+
+  * properly quote check of pid in bind9 init.d.  LP: #1092243
+
+  [LaMont Jones]
+
+  * include distro and package version in version string
+  * apparmor: allow GeoIP data file access.  LP: #834901
+  * enable filter-aaaa.  Closes: #701704  LP: #1115168
+
+ -- LaMont Jones <lamont@debian.org>  Thu, 29 Aug 2013 16:22:29 -0600
+
+bind9 (1:9.9.3.dfsg.P2-3) unstable; urgency=low
+
+  [Michael Stapelberg]
+
+  * add systemd service file.  Closes: #718212
+
+  [LaMont Jones]
+
+  * deliver more dnssec-* tools in bind9utils.  Closes: #713026
+  * support parallel=N DEB_BUILD_OPTIONS, fix -j build. Closes: #713025
+  * deliver rrl.h and stat.h Closes: #692483, #720813
+
+ -- LaMont Jones <lamont@debian.org>  Tue, 27 Aug 2013 10:06:37 -0600
+
+bind9 (1:9.9.3.dfsg.P2-2build1) saucy; urgency=low
+
+  [Marc Deslauriers]
+
+  * 9.9.2.dfsg.P1-2ubuntu1: fixed in 9.9.3b1
+  * 9.9.2.dfsg.P1-2ubuntu3: fixed in 9.9.3-P2
+
+  [Robie Basak]
+
+  * 9.9.2.dfsg.P1-2ubuntu2: fixed in 9.9.3b1
+
+  [LaMont Jones]
+
+  * Merge ubuntu changes, except: autoconf files are generated as part
+    of the source packagee creation, not on the build host.  NAK
+  * deliver more dnssec-* tools in bind9utils.  Closes: #713026
+  * support parallel=N DEB_BUILD_OPTIONS, fix -j build
+
+  [Michael Stapelberg]
+
+  * add systemd service file.  Closes: #718212
+
+ -- LaMont Jones <lamont@debian.org>  Thu, 22 Aug 2013 10:57:17 -0600
+
+bind9 (1:9.9.3.dfsg.P2-2) unstable; urgency=low
+
+  * ack NMUs of 9.8.4
+    - upstream 9.9.3-P2 fixes: CVE-2013-4854, CVE-2012-5689,
+      CVE-2013-2266
+    - deliver rrl.h
+
+  [LaMont Jones]
+
+  * Use ISC's bin/tests
+  * Diff cleanup and rationalization to 9.9.3 upstream
+
+ -- LaMont Jones <lamont@debian.org>  Sat, 17 Aug 2013 07:09:54 -0600
+
 bind9 (1:9.9.3.dfsg.P2-1) unstable; urgency=low
 
 
@@ -31,6 +101,33 @@ bind9 (1:9.9.2.dfsg.P1-3) experimental; urgency=low
 
  -- LaMont Jones <lamont@debian.org>  Mon, 04 Mar 2013 09:30:50 -0700
 
+bind9 (1:9.9.2.dfsg.P1-2ubuntu3) saucy; urgency=low
+
+  * SECURITY UPDATE: denial of service via incorrect bounds checking on
+    private type 'keydata'
+    - lib/dns/rdata/generic/keydata_65533.c: check for correct length.
+    - Patch backported from 9.9.3-P2
+    - CVE-2013-4854
+
+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Sun, 28 Jul 2013 10:13:06 -0400
+
+bind9 (1:9.9.2.dfsg.P1-2ubuntu2) raring; urgency=low
+
+  * configure.in: detect libxml 2.9 as well as 2.[678] (LP: #1164475). 
+  * debian/control: add Build-Depends on dh-autoreconf.
+  * debian/rules: use dh_autoreconf and dh_autoreconf_clean.
+
+ -- Robie Basak <robie.basak@canonical.com>  Wed, 10 Apr 2013 16:50:28 +0000
+
+bind9 (1:9.9.2.dfsg.P1-2ubuntu1) raring; urgency=low
+
+  * SECURITY UPDATE: denial of service via regex syntax checking
+    - configure,configure.in,config.h.in: remove check for regex.h to
+      disable regex syntax checking.
+    - CVE-2013-2266
+
+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Thu, 28 Mar 2013 15:04:57 -0400
+
 bind9 (1:9.9.2.dfsg.P1-2) experimental; urgency=low
 
   [Michael Gilbert]
@@ -53,6 +150,32 @@ bind9 (1:9.9.2.dfsg.P1-2) experimental; urgency=low
 
  -- LaMont Jones <lamont@debian.org>  Wed, 09 Jan 2013 10:09:40 -0700
 
+bind9 (1:9.8.4.dfsg.P1-6+nmu3) unstable; urgency=high
+
+  * Non-maintainer upload by the Security Team.
+  * CVE-2013-4854: A specially crafted query that includes malformed rdata can
+    cause named to terminate with an assertion failure while rejecting the
+    malformed query. (Closes: #717936).
+
+ -- Salvatore Bonaccorso <carnil@debian.org>  Sat, 27 Jul 2013 10:24:07 +0200
+
+bind9 (1:9.8.4.dfsg.P1-6+nmu2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Install /usr/include/dns/rrl.h (closes: #699834).
+
+ -- Michael Gilbert <mgilbert@debian.org>  Tue, 16 Apr 2013 01:59:05 +0000
+
+bind9 (1:9.8.4.dfsg.P1-6+nmu1) unstable; urgency=high
+
+  * Non-maintainer upload by the Security Team.
+  * Fix cve-2012-5689: issue in nameservers using DNS64 to perform a AAAA
+    lookup for a record with an A record overwrite rule in a Response Policy
+    Zone (closes: #699145).
+  * Fix cve-2013-2266: issues in regular expression handling (closes: #704174).
+
+ -- Michael Gilbert <mgilbert@debian.org>  Fri, 29 Mar 2013 00:47:25 +0000
+
 bind9 (1:9.8.4.dfsg.P1-6) unstable; urgency=low
 
   [Ben Hutchings]